Risk management is a vital element when doing business
but so far, not many enterprises concern about it.

According to a recent survey with 522
companies, there are only 43 comanies, accounting for about 8%, have the
independent risk management department in their business. More noteworthy, the
majority of these 43 companies operating in the banking and financial sector, which
has nothing new to risk management. In fact, not all banks have independent and
effective risk management departments. The negative problems
related to the banking system in recent times somewhat showed the picture about
the risk management of this sector.

Risk is understood as any events and
situations that could harmful to the ability to achieve the business objectives
of the enterprise. Risk management is organized in a formal way and is
conducted continuously to identify, control and report the risks that may
affect the achievement of the business
objectives of the enterprise.

So why businesses are not interested in risk
management? Part of this problem stems from the awareness of the leaders. In
order to build and operate the risk management
system in the enterprise, it needs the commitment of the senior
leaders. If senior leaders do not aware of this problem, the administration
process will be difficult to achieve the desired effectiveness.

Recently, there are many theories and systems
of risk management but small and medium enterprises should be cautious when
apply because system and theory are just general and they should be adjusted
when applying to each business.

In order to form the culture of risk
management, the leaders must along with the employees to implement it regularly
and for each project. In theory, the risk management process is
carried out in 5 steps: identify risk; evaluate its impact; determine the
likelihood; action and measures; monitoring and evaluation.